virginBodySending.plan();
}
- if (TheConfig.send_client_ip && request)
- {
+ if (TheConfig.send_client_ip && request) {
IpAddress client_addr;
#if FOLLOW_X_FORWARDED_FOR
- if (TheConfig.icap_uses_indirect_client) {
- client_addr = request->indirect_client_addr;
- } else
+ if (TheConfig.icap_uses_indirect_client) {
+ client_addr = request->indirect_client_addr;
+ } else
#endif
- client_addr = request->client_addr;
- if(!client_addr.IsAnyAddr() && !client_addr.IsNoAddr())
- buf.Printf("X-Client-IP: %s\r\n", client_addr.NtoA(ntoabuf,MAX_IPSTRLEN));
+ client_addr = request->client_addr;
+ if (!client_addr.IsAnyAddr() && !client_addr.IsNoAddr())
+ buf.Printf("X-Client-IP: %s\r\n", client_addr.NtoA(ntoabuf,MAX_IPSTRLEN));
}
if (TheConfig.send_client_username && request)
#if FOLLOW_X_FORWARDED_FOR
/**
- * clientFollowXForwardedForCheck() checks the content of X-Forwarded-For:
+ * clientFollowXForwardedForCheck() checks the content of X-Forwarded-For:
* against the followXFF ACL, or cleans up and passes control to
* clientAccessCheck().
*
* The trust model here is a little ambiguous. So to clarify the logic:
* - we may always use the direct client address as the client IP.
- * - these trust tests merey tell whether we trust given IP enough to believe the
+ * - these trust tests merey tell whether we trust given IP enough to believe the
* IP string which it appended to the X-Forwarded-For: header.
* - if at any point we don't trust what an IP adds we stop looking.
* - at that point the current contents of indirect_client_addr are the value set
projects / thirdparty / squid.git / commitdiff
